Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/lhtdeQQfZVNSN8cxPY3RQXdY_4E.roa
File: lhtdeQQfZVNSN8cxPY3RQXdY_4E.roa (raw, json)
Hash identifier: hZEu3eIpJ+EgkcMjS1T8jtX3iOA6/LIbyY9rOha09jQ=
Subject key identifier: 96:1B:5D:79:04:1F:65:53:52:37:C7:31:3D:8D:D1:41:77:58:FF:81
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 018A1796D1C4CF89A01C9F56A8939FEEEF9D
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/lhtdeQQfZVNSN8cxPY3RQXdY_4E.roa
Signing time: Mon 21 Aug 2023 10:14:34 +0000
ROA not before: Mon 21 Aug 2023 10:14:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43581
IP address blocks: 46.29.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:96:d1:c4:cf:89:a0:1c:9f:56:a8:93:9f:ee:ef:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Aug 21 10:14:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=961b5d79041f65535237c7313d8dd1417758ff81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4b:42:76:20:32:9b:1a:fc:fb:a3:b0:17:fc:
49:5b:1f:b4:f4:4b:79:fe:4a:59:b3:3f:12:33:7e:
34:85:93:6e:43:fd:64:58:9e:bf:23:63:d8:3d:56:
8a:07:8c:01:7c:9f:2e:0e:89:a2:db:70:7a:aa:4a:
61:f5:f2:72:21:dc:66:c1:b4:aa:e3:3c:f3:ee:12:
ca:e9:ba:9d:28:60:51:98:f5:9e:6c:68:37:47:86:
10:2a:97:64:a0:e4:e5:af:f7:43:81:44:c4:48:fe:
4c:0a:af:82:2d:71:2f:f8:5b:54:81:c2:2a:a2:1a:
52:e8:f5:3c:a9:2f:0e:b2:1e:01:17:dd:3b:df:c6:
43:46:51:e9:b4:52:71:43:43:d8:d6:b3:2f:e8:96:
9b:a0:04:92:0b:b2:af:53:ed:c6:44:7a:88:de:d1:
0a:15:67:81:85:da:d8:5e:a3:3c:76:e8:93:08:ac:
12:99:b6:56:f6:f7:39:8a:f1:9c:e5:26:68:34:01:
42:b9:d7:59:50:14:b2:3b:1c:77:dc:7d:1b:09:4a:
64:41:72:56:b1:f1:d2:48:31:98:4c:89:6b:1a:7f:
2c:04:37:eb:bd:f7:f8:01:7d:8d:41:58:43:8e:a9:
27:74:7f:1c:eb:b4:44:bc:f9:09:23:db:38:1b:30:
70:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:1B:5D:79:04:1F:65:53:52:37:C7:31:3D:8D:D1:41:77:58:FF:81
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/lhtdeQQfZVNSN8cxPY3RQXdY_4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.236.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d6:91:31:8f:0b:3d:a8:1b:2b:ec:db:be:34:75:46:4b:e1:
00:1c:e6:fe:68:25:a3:4e:ef:a2:01:b2:48:47:9b:33:b6:9e:
86:3b:5a:4e:82:96:88:ac:19:9e:6e:d4:69:91:56:be:e4:0c:
aa:2e:01:6a:ea:24:7d:e0:f4:cc:5e:68:95:d5:55:af:66:f1:
43:32:66:47:7d:16:4e:de:f2:bd:00:f3:d3:91:bb:a4:f9:61:
a1:73:ea:d3:3c:1a:50:c6:a8:3b:27:8a:5b:7d:08:95:8e:fc:
8a:db:29:66:17:b0:25:6e:7b:d9:de:b8:65:c5:18:77:da:5b:
bf:2a:e5:2b:40:57:04:38:8a:1d:ed:10:c0:08:1d:70:54:30:
d0:0b:2a:5f:50:82:39:c6:e9:1e:b1:6f:50:b6:e2:81:be:1f:
2d:d4:61:01:cf:e1:b3:16:5f:35:18:32:9f:b9:ec:2b:de:62:
65:39:f8:b6:62:2b:1f:3e:5e:11:0c:5b:d3:84:db:b9:8a:0a:
a6:a1:37:11:7c:de:12:9f:f4:16:45:7a:93:0c:af:22:f7:96:
9a:11:7e:6b:4a:c7:ce:fc:f2:d8:5f:e3:0a:b0:44:1c:bd:5b:
d9:3c:b8:af:c8:06:11:26:20:ce:9c:eb:ab:25:f3:5b:67:65:
71:ac:9f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 31 14:08:58 2023 by rpki-client on console-ams.rpki-client.org